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DOCUMENT- IDENTIFIER: US 5790669 A 

** See image for Certificate of Correction ** 

TITLE: Lightweight non-repudiation system and method 

DATE ISSUED (1)-: 
19980804 

Brief Summary Text (7) : 

In these prior art systems, a program that needs to send securely a non-repudiable 
piece of information (such as a receipt or a signed check) does so by encrypting 
that piece of information with its private key, which is equivalent to a digital 
signature . This technique is called signing. The receiver of the signed message can 
prove that the encrypted information came from the supposed sender (or anyone who 
knows the sender's private key) by successfully decrypting the message using the 
sender's public key. The receiver could also forward the message to a third party, 
who could similarly verify the sender's identity. Thus, non-repudiation is provided 
for specific situations. 

Detailed Description Text (24) : 

Group 1 data 130-1 is data that is common to all of a process's interactions with 
other processes and includes the public key 132 and the private key 134. As in 
public key cryptography, a process can distribute its public key 132 but holds 
secret its private key 134. In the preferred embodiment, the public keys 132 and 
private keys 134 of two parties communicating via an EBRDS 160 are used to generate 
an agreed key (not shown) that is used to encrypt and decrypt both sides of the 
conversation (as in Dif.f ie-Helman cryptography) . While each party has only one pair 
of public and private keys 132, 134, it will have as many agreed keys as it has 
conversational peers. In some situations, e.g., within a signature message 124, the 
message contents are encrypted with the sender's private key 134, which enables the 
receiver or a third party to authenticate the originator of the encrypted contents. 

Current US Original Classification (1) : 
705/80 
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PR I MARY -EXAMINER: Barron, Jr.; Gilberto 

ATTY-AGENT-FIRM: Crisman; Douglas J. Flehr Hohbach Test Albritton & Herbert LLP 
ABSTRACT : 

A system and method is disclosed that provides lightweight non- repudiability for 
networked computer systems . Each party to a two-party communication maintains hashes 
on its incoming and outgoing messages. At its discretion, either party can request 
that the other party commit to the conversation. The second party (if it agrees) 
then sends signed hashes that third parties can use to verify the content of the 
conversation. The party requesting the commitment stores its corresponding hashes 
when it sends the request. If the hashes from both parties are the same for the same 
positions in their conversation, the two parties can verify that their conversation 
is error- free. If the sending party also maintains logs of both sides (incoming and 
outgoing) of the conversation and stores hashes corresponding to the beginning of 
the logs, the sending party is also able to verify to a third party that the logged 
portion of the conversation was between the first party and the second party. 
Non-repudiability for entire conversations consisting of millions of messages can 
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generated from each other. Often, the encryption key and the decryption key will be 
the same. A public: key algorithm, on the other hand, is one in which the finrrypUnn 
key and the decryption key are different. Generally, the encryption key is made 
public, the decryption key is kept secret, and the private decryption key cannot be 
easily generated from the public encryption key. 

Detailed De srr i phi on Tpvh (3) - 

The preferred embodiments of the present invention use a public key algorithm. As 
discussed above, a publ i c key algorithm is one in which the f»nr-rypi--i on key and the 
decryption key are different. Generally, the encryption key is made public, the 
decryption key is kept secret, and the private decryption key cannot be easily 
generated from the public encryption key. More specifically, the preferred 
embodiments of the present invention use a modified RSA algorithm. The modified RSA 
algorithm used in the present invention is partially based on the RSA algorithm, but 
provides additional features not provided by the RSA algorithm (these additional 
features will be described in detail below) . 

Current US Cross Rpfprpnrp fl^. gsifiraUnn (2) : 
705/51 

Other Reference Publ -i rat- 1 nn (4) : 

Rivest et al . , "A Method for Obtaining Digital Rignat-nrpg and Public-Key 
Cryptosystems, " Communications of the ACM 21 (2 ): 120-126 , 1978. 

CLAIMS : 

20. A system for controlling unauthorized access to information distributed to 
users, the system comprising: 

an encryptor for generating an encryption key and a dporypM on key using a publ i r. 
key algorithm and for encrypting the information using the gnrrypM on key; 

a user key generator for receiving identifying information from a user, for 
generating a numeric representation of the identifying information, and for 
generating a unique user key using the numeric representation of the identifying 
information and decryption key information; and 

a decryptor for decrypting the encrypted form of the information using the numeric 
representation of the identifying information and the unique user key. 

39. A system for controlling unauthorized access to information distributed to 
users, the system comprising: 

an encryptor for generating two encryption keys and two derrypMon k^yg using a 
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£^?£ ke^ hm ^ f ° r """Wing the ir^tion twice using the two 

gene^tS l^^^^J^^SgifS^"^ . i^or«t:±oo from a user, for 
generating two uniSe ustr tits usina%hf I 6 ldentlf y in 9 information, and for 
identifying -f o^io^cr^^ 

SuSr^SrJSnStiSi^l tnt ±^^j£E t ? £ ^ using the two 

and .ultiplying the results^! SKi?2LJg ?oT ^rS^tfiTiSSStlSf ^ 
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L8: Entry 6 of 10 File: USPT Dec 17, 1996 



DOCUMENT- IDENTIFIER: US 5586186 A 

TITLE: Method and system for controlling unauthorized access to information 
distributed to users 



TTS Pahfinh Mn. (1) : 
5586186 

Rrifif Summary Text (8) : 

Any solution involving encryption must be based on an encryption algorithm. 
Generally, there are two types of encryption algorithms, symmetric and public key. A 
symmetric algorithm is one in which the encryption key and the decryption key can be 
generated from each other. Often, the encryption key and the decryption key will be 
the same. A public kfiy algorithm, on the other hand, is one in which the pnrrypf-inn 
key and the decryption key are different. Generally, the encryption key is made 
public, the decryption key is kept secret, and the private decryption key cannot be 
easily generated from the public encryption key. 

Detail gri DPRrriphinn Tpyf (3) : 

The preferred embodiments of the present invention use a public key algorithm. As 
discussed above, a public key algorithm is one in which the pnrrypUnn key and the . 
decryption key are different. Generally, the encryption key is made public, the 
decryption key is kept secret, and the private decryption key cannot be easily 
generated from the public encryption key. More specifically, the preferred 
embodiments of the present invention use a modified RSA algorithm. The modified RSA 
algorithm used in the present invention is partially based on the RSA algorithm, but 
provides additional features not provided by the RSA algorithm (these additional 
features will be described in detail below) . 

CLAIMS : 

20. A system for controlling unauthorized access to information distributed to 
users, the system comprising: 

an encryptor for generating an encrypt ion key and a Hprryph ion k^y using a publ i r 
key algorithm and for encrypting the information using the gnr Typhi on key; 

a user key generator for receiving identifying information from a user, for 
generating a numeric representation of the identifying information, and for 
generating a unique user key using the numeric representation of the identifying 
information and decryption key information; and 

a decryptor for decrypting the encrypted form of the information using the numeric 
representation of the identifying information and the unique user key. 

39. A system for controlling unauthorized access to information distributed to 
users, the system comprising: 

an encryptor for generating two encryption keys and two derryprion kf>yg using a 
public key algorithm and for encrypting the information twice using the two 
encryption keys; 

a user key generator for receiving identifying information from a user, for 
generating two numeric representations of the identifying information, and for 
generating two unique user keys using the two numeric representations of the 
identifying information, decryption key information, and a random number; and 
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a decryptor for decrypting the two encrypted forms of the information using the two 
numeric representations of the identifying information and the two unique user keys 
and multiplying the results of the two decryptions to recover the information. 
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Sep 17, 1996 



DOCUMENT- IDENTIFIER: US 5557765 A 

TITLE; System and method for data recovery 

US Patent No. (1) : 
5557765 

Detailed Description Tf»vt- (31) : 

As mentioned above, one difference between this system 104 and the Clipper/Capstone 
system is that this system 104 uses public key cryptography in place of conventional 

(symmetric) cryptography to generate the law enforcement access field or LEAF. As is 
well known, with symmetric cryptography, sender and receiver share a key that is 
used to control both encryption and decryption. With asymmetric cryptography, 
encryption and decryption use separate keys which cannot be computed from one 
another. Thus, an encryption key can be made public (a " puhl ir kf>y ") and anyone can 
send a secret message which can only be decrypted by the holder of the corresponding 

("private") decryption key. The use of public key cryptography allows the software 
programs 124, 130 to generate and validate LEAFs without having to store secret keys 
or private keys. Only public quantities need be embedded in the software programs 
124, 130 and, therefore the present invention does not need to preserve the secrecy 
of its own structure or content. The elements of the system 102 shall now be 
described. 
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L8: Entry 8 of 10 File: USPT Nov 21, 1995 



DOCUMENT- IDENTIFIER: US 5469506 A 

TITLE: Apparatus for verifying an identification card and identifying a person by 
means of a biometric characteristic 



US PahPnf No (1) : 

Detailed Dfiffrriptinn Tpvh (15) : 

In accordance with this embodiment the metric is pnrrypffid wi th an pnrrypfinn key, 
E.sub.i, for a public key encryption system and the corresponding Hprrypt-inn V^y, 
D.sub.i, is encrypted with another encryption key, E.sub.i, for the system to form 
an encrypted decryption key E.sub.i [D.sub.i ]. An apparatus in accordance with the 
subject invention stores a single decryption K>y D.sub.i, and, when it scans indicia 
I decrypts encrypted decryption E.sub.i [D.sub.i ] to recnvp r dp^ryptinn lc^y 
D.sub.i, which in turn is used to recover the metric which is then compared with the 
biometric of the person presenting the card C. A more detailed description of this 
procedure is set forth in co-pending, commonly assigned U.S. application Ser. No. 
07/979,018 and is not believed necessary here for an understanding of the subject 
invention. 
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Nov 21, 1995 



L8 : Entry 8 of 10 
US - PAT - NO A 546 9 5 06 

DOCUMENT- IDENTIFIER : US 5469506 A 

TITLE: Apparatus for verifying an identification card and identifying a person by 
means of a biometric characteristic 

DATE-ISSUED: November 21, 1995 



INVENTOR- INFORMATION : 
NAME 

Berson; William 
Zemlok; Kenneth C. 



CITY 

Westport 
Shelton 



STATE 

CT 

CT 



ZIP CODE 



COUNTRY 



ASSIGNEE- INFORMATION : 

NAME CITY STATE 

Pitney Bowes Inc. Stamford CT 



ZIP CODE 



COUNTRY 



TYPE CODE 
02 



APPL-NO: 08/ 265872 [PAT.M] 
DATE FILED: June 27, 1994 



INT-CL: [06] RQA L 2/22, EDA L 3./QH, HOA L 9./1Q. 

US-CL-ISSUED: 380/23; 380/9, 380/25, 380/30, 380/49, 380/50, 380/54, 235/379, 
235/380, 382/115 

US -CL- CURRENT: 713/186; 233./ 123., .IRO /^O, 3£&/5A, 2A2/115. 

FIELD- OF -SEARCH : 380/23-25, 380/9, 380/30, 380/49, 380/50, 380/54, 235/380, 235/379, 
382/2-6, 340/825.31, 340/825.34 
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US-CL 
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4853961 
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Pastor 


380/21 
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4879747 


November 1989 


Leighton 


380/23 
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4991205 


February 1991 


Lemelson 


380/5 
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4993068 


February 1991 


Piosenka 


380/23 
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4995081 


February 1991 


Leighton 


380/23 


□ 
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Senanayake 


235/380 


□ 




August 1994 


Axelrod et al . 


380/23 


□ 




January 1995 


Berson et al . 


380/23 




5420924 


May 1995 


Berson et al . 


380/23 



OTHER PUBLICATIONS 

Special Report: Biometrics; Vital Signs of Identity; IEEE Spectrum Feb. 1994 vol. 31 
No. 2. 

Inforite Corporation; Signature Verification, MP100 Rite Verification. 
ART-UNIT: 222 

PRIMARY- EXAMINER: Gregory; Bernarr E. 

ATTY -AGENT -FIRM: Whisker; Robert H. Scolnick; Melvin J. 
ABSTRACT: 

A biometric is a substantially stable physical or behavioral characteristics of a 
person which can be automatically measured and characterized for comparison. In 
accordance with the subject invention an identification card includes an encrypted 
representation of the biometric characteristic, which may be a finger print or a 
description of the manner in which the person signs his or her name, including the 
order and velocity in which strokes comprising a signature are written. The 
identification card is validated, and the person identified by an apparatus 
including a scanner which simultaneously scans two fields. The card is position in 
the first field and the biometric (e.g. a thumbprint) is simultaneously positioned 
in the second field and both are scanned at once, to produce a composite signal 
including both the code of representation and the scanned biometric. A 
microprocessor separates the composite signal, decodes the coded representation, and 
compares it to the stand biometric to validate the card. By simultaneously scanning 
both the coded representation and the biometric with a single scanner the cost of 
the apparatus is reduced as is the opportunity for a breach of security. 

13 Claims, 7 Drawing figures 
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DATE-ISSUED: June 16, 1998 
INVENTOR- INFORMATION : 

NAME CITY STATE ZIP CODE COUNTRY 

Ishii; Shinji Kanagawaken JP 

ASSIGNEE- INFORMATION : 

NAME CITY STATE ZIP CODE COUNTRY TYPE CODE 

Nippon Telegraph and Telephone Corporation Tokyo JP 03 

APPL-NO: 08/ 666905 [PAT.Ml 
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FOREIGN- APPL- PRIORITY -DATA: 

COUNTRY APPL-NO APPL-DATE 
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PAT-NO ISSUE-DATE PATENTEE-NAME US-CL 

□ 4731842 March 1988 Smith 380/24 
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OTHER PUBLICATIONS 
Schneier, Applied Cryptography, p. 175, 1996. 
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Proceedings of '^^n IEEE Symposium on Security aH^Frivacy, Apr. 27-29, 1987, 
Physical Security for the .mu. ABYSS System, Steve H. Weingart, pp. 52 to 58. 
NTT Human Interface Laboratories, Project Team Article on the Certificate Signing 
Unit, dated Apr. 19, 1996, pp. 7 and 8; and. 

Lecture Notes in Computer Science edited by G. Goos and J. Hartmanis, Advances in 
Cryptology--Eurocrypt '88, May 1988, Some Applications of Multiple Key Ciphers, pp. 
454 to 467. 

ART-UNIT: 362 

PRIMARY-EXAMINER : Cain; David C. 
ATTY-AGENT-FIRM: Banner & Witcoff , Ltd. 



ABSTRACT : 

A method and a system for generating and managing a secret key of a public key 
cryptosystem, in which the secret key is generated inside a tamper resistant device, 
and stored into a storage region in a personal portable device from which the secret 
key cannot be read out of the personal portable device, while the personal portable 
device is inside the tamper resistant device. Here, the secret key can be reproduced 
by collecting the partial secret keys from those arbitrators who judge that the 
secret key reproduction is appropriate. Also, the secret key is generated inside a 
tamper resistant personal portable device, and stored into a storage region in the 
tamper resistant personal portable device from which the secret key cannot be read 
out of the tamper resistant personal portable device. Here, the secret key can be 
reproduced by using the partial secret keys for constituting the secret key from all 
entities sharing interests with a user of the tamper resistant personal portable 
device. 

79 Claims, 23 Drawing figures 
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File: USPT 



Jun 16, 1998 



DOCUMENT- IDENTIFIER: US 576838 9 A 

TITLE: Method and system for generation and management of secret key of public key 
cryptosystem 



DATE ISSUED (1) : 
1998Q616 

Brief Summary Text (9) : 

On the other hand, the publ i c key cryptosystem requires a larger amount of 
computations compared with the secret key cryptosystem so that it is not suitable 
for high speed processing, but it uses different keys for an encryption key and a 
decryption key, so that the encryption key can be disclosed to public and a secret 
distribution of a key as required for the shared key of the secret key cryptosystem 
is unnecessary. 

Brief Summary Text (14) : 

Conventional known measures against such illegal copies include (1) a scheme for 
providing a protection on a data supply medium (such as a floppy disk) to prevent a 
copying itself, and (2) a scheme in which a copying itself is allowed but the 
digital data mni-pnts are enciphered so that a key is necessary in order to execute 
or reproduce most parts of programs, video data, music data, etc., and the key is 
distributed to only those persons who actually paid the price or whose intention to 
pay the price can be confirmed by utilizing the networks. In the latter scheme, the 
digital data contents should be usable by applying a high speed deciphering, so that 
the secret key cryptosystem is utilized. 

Brief Summary Text (16) : 

On the other hand, the latter scheme is considered to be highly prospective and 
adaptive because the digital data contents can be freely copied and distributed to 
many while* a trial use of a part of the digital data contents is possible, even 
though a full scale use of the digital data mnt-pn^s is not possible until a key is 
obtained through a legal process such as the payment of the price. 
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L8: Entry 3 of 10 File: USPT Apr 28, 1998 



DOCUMENT- IDENTIFIER: US 5745573 A 

TITLE: System and method for controlling access to a user secret 

US Patent No. (1): 
5745573 

Detailed Description Tpyf (31) : 

As mentioned above, one difference between this system 104 and the Clipper/Capstone 
system is that this system 104 uses public key cryptography in place of conventional 
(symmetric) cryptography to generate the law enforcement access field or LEAF. As is 
well known, with symmetric cryptography, sender and receiver share a key that is 
used to control both encryption and decryption. With asymmetric cryptography, 
encryption and decryption use separate keys which cannot be computed from one 
another. Thus, an encryption key can be made public (a "piiblin_key" ) and anyone can 
send a secret message which can only be decrypted by the holder of the corresponding 
("private") decryption key. The use of public key cryptography allows the. software 
programs 124, 130 to generate and validate LEAFs without having to store secret keys 
or private keys. Only public quantities need be embedded in the software programs 
124, 130 and, therefore the present invention does not need to preserve the secrecy 
of its own structure or content. The elements of the system 102 shall now be 
described. 
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File: USPT 
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DOCUMENT- IDENTIFIER: US 5724425 A 

TITLE: Method and apparatus for enhancing software security and distributing 
software 



US Patent No. (1) : 
5724425 



22. The computer- readable medium of claim 21 wherein said secon d decryption key is a 
puhl i c. key of said platform provider and where said first decryption key and said 
first encryption key are a public -private cryptographic key pair. 

39. The method of claim 38 where said second decryption key is a pnhl -i r? key of said . 
platform provider and where said first deorypt-i on key and said first pnrrypfinn key 
are a public-private cryptographic key pair. 

66. The method of claim 65 where said second decryption key is a pnhl i r key of said 
platform provider and where said first deri-yp Hon key and said first enrrypti on key 
are a public -private cryptographic key pair. 



CLAIMS : 
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DOCUMENT- IDENTIFIER: US 5812664 A 
TITLE: Key distribution system 



Hfi Paf.PTif. No. (1) : 
5812664 

Detailed Description Text (9) : 

This invention utilizes encoded bar code 34 and encoded bar code 45 to transmit 
secure messages or information. The messages are transformed through the use of two 
basic elements: a set of unchanging rules or steps called a cryptographic algorithm, 
and a set of variable cryptographic keys. The algorithm is composed of encryption 
and decryption procedures. An encryption key is used to encipher plaintext into 
ciphertext and a decryption key is used to decipher ciphertext into plaintext. The 
encryption key is the private key that is used to generate, i.e. encoded bar code 34 
or encoded bar code 45, and the de^rypt -i on key -is Mip puhl -i r-key, i.e. the keys 
stored in memory 9 of authenticator 13 and memory 38 of verifier 35. 

Detailed Description Tevt (10) : 

Computer 12 generates a unique client master cryptographic key pair, that includes 
an encryption key and a decryption key. Processor 18 of authenticator 13 generates a 
unique session cryptographic key pair, that includes an encryption key and a 
decryption key i.e. private and pnhl i r key respectively The master cryptographic 
public- key is the key that unlocks the certificate. The certificate contains the 
session public key. The session public key is used to decrypt the session data. 
Session data may be the client public key, a certificate revocation, a new master 
public key or program updates for processor 37 of verifier 35. Authenticator 13 
stores the private portion of session cryptographic key pair in memory 9 and 
transmits the public portion of session cryptographic key pair to computer 12 . 
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L8: Entry 1 of 10 File: USPT Sep 22, 1998 



DOCUMENT- IDENTIFIER: US 5812668 A 

TITLE: System, method and article of manufacture for verifying the operation of a 
remote transaction clearance system utilizing a multichannel, extensible, flexible 
architecture 



US Patent No. (1) : 
5812668 

n^t-a-n^H np.grHpi-inn Tpyf. (79) : 

In function block 430, merchant computer system 130 generates a random encryption 
key RK-0 540, denoted as RK-0. Random encryption key RK-0 540 is a symmetric 
encryption key. A symmetric encryption key is a key characterized by the property 
that a message encrypted with a symmetric key can be decrypted with that same key. 
This is contrasted with an asymmetric key pair, such as a puhl Ir -key /private -k^y key 
pair, where a message encrypted with one key of the key pair may only be d p crypt pH 
with the other key of the same key pair. FIG. 5C depicts random encryption key RK-0 
540. 
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This application is a continuation of U.S. Patent Application No. 09/290,363, filed April 12, 1999 and entitled 
"ENFORCEMENT ARCHITECTURE AND METHOD FOR DIGIPAL^^ and claims 

the benefit of U.S. Provisional Application No. 60/126,614, file^March 27, 19989^) 
Please cancel claims 1-105 without prejudice. 

106 • A method for a device to interdependently 
validate : 

a digital content package having a piece of digital 
content in an encrypted form; and 

a corresponding digital license for rendering the 
digital content, the method comprising: 

- deriving a first key from a source available to the 
device; 

- obtaining a first digital signature from the 
digital content package; 

- applying the first key to the first digital 
signature to validate the first digital signature 
and the digital content package; 

- deriving a second key based on the first digital 
signature; 

- obtaining a second digital signature from the 
license; and 

- applying the second key to the second digital 
signature to validate the second digital signature 
& the license. 

(see Cuccia et al., US Pat. 6, 151, 676), , ... 

107. The method of claim 106 wherein deriving the first 
key comprises: 

- obtaining a first encrypted key from the license; 

- applying a key available to the device to the first 
encrypted key to decrypt the first encrypted key; 

- obtaining a second encrypted key from the digital 
content; and 

- applying the decrypted first encrypted key to the 
second encrypted key to produce the first key. 



108. The method of claim 107 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , and wherein the first encrypted 
key is the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., (PU-D (KD) ) ) . 

109. The method of claim 107 wherein the device has a 
public key (PU-D) and a private key (PR-D), and wherein 
the key available to the device is (PR-D) . 

110. The method of claim 107 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C) , and wherein 
the second encrypted key is the content provider public 
key (PU-C) encrypted with the decryption key (KD) 

(i.e. , KD (PU-C) ) . 

111. The method of claim 107 wherein the second 
encrypted key is the basis for the first digital 
signature . 

112. The method of claim 106 wherein deriving the 
second key comprises: 

- obtaining a signed certificate from the license, the 
signed certificate having contents therein; and 
- applying the first key to the signature of the 
signed certificate to produce the contents of the 
certificate and also to validate the signature. 

113. The method of claim 112 wherein the digital 
license is provided by a license provider having a 
public key (PU-L) and a private key (PR-L) , and wherein 
the contents of the certificate is (PU-L) . 

114. The method of claim 113 wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C), and wherein 
the signed certificate is a certificate containing the 



license provider public key (PU-L) and signed by the 
content provider private key (PR-C) (i.e., (CERT (PU-L) 
S (PR-C) ) ) . 

115. The method of claim 113 wherein the digital content 
package is provided by a content provider authorized by 
a root source to provide the package, wherein the root 
source has a public key (PU-R) and a private key (PR-R) 
and wherein the signed certificate is a certificate 
containing the license provider public key (PU-L) and 
signed by the root source private key (PR-R) (i.e., 
(CERT (PU-L) S (PR-R) ) ) . 

116. The method of claim 106 wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C), and wherein 
the first key is (PU-C) . 

117. The method of claim 116 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , and wherein the first digital 
signature is based on the content provider public key 

(PU-C) encrypted with the decryption key (KD) and is 
signed by the content provider private key (PR-C) 

(i.e. , (KD (PU-C) S (PR-C) ) ) . 

118. The method of claim 117 wherein deriving (PU-C) 
comprises: deriving (KD) from a source available to the 
device; applying (KD) to (KD (PU-C) S (PR-C)) to 
produce (PU-C) . 

119. The method of claim 118 wherein the device has a 
public key (PU-D) and a private key (PR-D) , wherein the 
license has the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., (PU-D (KD) ) ) , and 
wherein deriving (KD) comprises: 

obtaining (PU-D (KD) ) from the license; 
applying (PR-D) to (PU-D (KD) ) to produce (KD) . 



120. The method of claim 119 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the license rights description 
being encrypted with the decryption key (KD) (i.e., (KD 
(DRL) ) ) , the method further comprising applying (KD) to 
(KD(DRL)) to obtain the license terms and conditions. 

121. The method of claim 119 wherein the license has a 
license rights description specifying terms and 
conditions that must be J satisfied before the digital 
content may be rendered, the method further comprising: 
evaluating the license terms and conditions to 
determine whether the digital content is permitted to 
be rendered in the manner sought, 

if so, applying (KD) to the encrypted digital content 
to decrypt such encrypted digital content; and 
rendering the decrypted digital content. 

122. The method of claim 116 wherein the encrypted 
digital content package is provided by a content 
provider authorized by a root source to provide the 
package, wherein the root source has a public key (PU- 
R) and a private key (PR-R) and wherein the first 
digital signature is a signed certificate containing 
the content provider public key (PU-C) and signed by 
the root source private key (PR-R) (i.e., (CERT (PU-C) 
S (PR-R) ) ) . 

123. The method of claim 106 wherein the digital license 
is provided by a license provider having a public key 
(PU-L) and a private key (PR-L) , and wherein the second 
key is (PU-L) . 

124. The method of claim 123 wherein the second digital 
signature is a digital signature encrypted with the 
license provider private key (i.e., (S (PR-L))). 

125. The method of claim 124 wherein the digital content 
package is provided by a content provider having a 



public key (PU-C) and a private key (PR-C), wherein the 
license has a certificate containing the license 
provider public key (PU-L) and signed by the content 
provider private key (PR-C) (i.e., (CERT (PU-L) S (PR- 
OM, and wherein deriving ( PU-L) comprises: 
deriving (PU-C) from a source available to the device; 
obtaining (CERT (PU-L) S (PR-C)) from the license; and 
applying (PU-C) to (CERT (PU-L) S (PR-C)) to validate 
(CERT (PU-L) S (PR-C)), to produce (PU-L) and also to 
validate the content provider. 

126. The method of claim 125 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , wherein the first digital 
signature is based on the content provider public key 
(PU-C) encrypted with the decryption key (KD) and is 
signed by the content provider private key (PR-C) 
(i.e., (KD (PU-C) S (PR-C))), and wherein deriving (PU- 
C) comprises: 

deriving (KD) from a source available to the device; 
applying (KD) to (KD (PU-C) S (PR-C)) to produce (PU-C) 

127. The method of claim 126 wherein the device has a 
public key (PU-D) and a private key (PR-D) , wherein the 
license has the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., (PU-D (KD) ) ) , and 
wherein deriving (KD) comprises: 

obtaining (PU-D (KD) ) from the license; 
applying (PR-D) to (PU-D (KD) ) to produce (KD) . 

128. The method of claim 127 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the license rights description 
being encrypted with the decryption key (KD) (i.e., (KD 
(DRL) ) ) , the method further comprising applying (KD) to 
(KD(DRL)) to obtain the license terms and conditions. 

129. The method of claim 127 wherein the license has a 
license rights description specifying terms and 



conditions that must be satisfied before the digital 
content may be rendered, the method further comprising: 
evaluating the license terms and conditions to 
determine whether the digital content is permitted to 
be rendered in the manner sought; 

if so, applying (KD) to the encrypted digital content 
to decrypt such encrypted digital content; and 
rendering the decrypted digital content. 

130. A method for a device to interdependently validate 
a piece of digital content and a corresponding digital 
license for rendering the digital content, the digital 
content being encrypted, the encrypted digital content 
being decryptable according to a decryption key (KD) 
and being packaged in a digital content package, the 
digital content package being provided by a content 
provider having a public key (PU-C) and a private key 
(PR-C), the digital license being provided by a license 
provider having a public key (PU-L) and a private key 
(PRL) , the device having a public key (PU-D) and a 
private key (PR-D) , the digital content package 
comprising : 

the encrypted digital content; and 

the content provider public key (PU-C) encrypted with 
the decryption key (KD) and signed by the content 
provider private key (PR-C) (i.e., (KD (PU-C) S (PR- 
CM); 

the digital license comprising: 

the decryption key (KD) encrypted with the device 
public key (PU-D) (i.e., (PU-D (KD) ) ) ; 

a digital signature from the license provider (without 
any attached certificate) based on (KD (DR-L) ) and (PU- 
D (KD) ) and encrypted with the license provider private 
key (i. e., (S (PR-L))); and 

a certificate containing the license provider public 
key (PU-L) and signed by the content provider private 
key (PR-C) (i.e., (CERT (PU-L) S (PR-C))); 
the method comprising: 

obtaining (PU-D (KD) ) from the license; 
applying (PR-D) to (PU-D (KD) ) to produce (KD) , 



obtaining (KD (PU-C) S (PR-C) ) from the digital content 
package; applying (KD) to (KD (PU-C) S (PR-C)) to 
produce (PU-C) ; 

applying (PU-C) to (S (PR-C)) to validate (KD (PU-C) S 
(PR-C)), thereby validating the digital content 
package; 

obtaining (CERT (PU-L) S (PR-C)) from the license; 

applying (PU-C) to (CERT (PU-L) S (PR-C)) to validate 

(CERT (PU-L) S (PR-C)), thereby validating the content 

provider, and also to obtain (PU-L); 

obtaining (S (PR-L) ) from the license; and 

applying (PU-L) to (S (PR-L)), thereby validating the 

license . 

131. The method of claim 130 wherein the digital content 
package further comprises a content/package ID 
identifying one of the digital content and the digital 
content package, and wherein the license further 
comprises the content / package ID of the corresponding 
digital content/digital content package, the method 
further comprising ensuring that the content/package ID 
of the license in fact corresponds to the content/ 
package ID of the digital content/digital content 
package . 

132. The method of claim 130 wherein the license further 
comprises a license rights description (DRL) specifying 
terms and conditions that must be satisfied before the 
digital content may be rendered, the method further 
comprising, 

evaluating the license terms and conditions to 
determine whether the digital content is permitted to 
be rendered in the manner sought, 

if so, applying (KD) to the encrypted digital content 
to decrypt such encrypted digital content; and 
rendering the decrypted digital content. 

133. The method of claim 132 wherein the license rights 
description is encrypted with the decryption key (KD) 

(i.e., (KD (DRL))), (see Hasebe et al . , US Pat. 5555304 about "Storage 
medium for preventing an illegal use by a third party", A vendor computer as claimed in claim 2, wherein the 



storage medium stores a plurality of encrypted electronic data, and each encrypted electronic data has a different 
electronic data descrypting key" . 

the method further comprising applying (KD) to (KD (DRL) ) 
to obtain the license terms and conditions (the examiner submits 
that this is obvious for a purpose of said description. 

134 . A computer-readable medium having computer- 
executable instructions for performing a method for a 

device to interdependently validate: 

a digital content package having a piece of digital 

content in an encrypted form; 

and 

a corresponding digital license for rendering the 
digital content, the method comprising: 
deriving a first key from a source available to the 
device; obtaining a first digital signature from the 
digital content package; applying the first key to the 
first digital signature to validate the first digital 
signature and the digital content package; 
deriving a second key based on the first digital 
signature, obtaining a second digital signature from 
the license; and 

- applying the second key to the second digital 
signature to validate the second digital signature and 
the license, 

135 - The moethod of claim 133 wherein deriving the 
first key comprises: 

- obtaining a first encrypted key from the license; 

- applying a key available to the device to the first 
encrypted key to decrypt the first encrypted key; 

- obtaining a second encrypted key from the digital 
content; and 

- applying the decrypted first encrypted key to the 
second encrypted key to produce the first key. 

136. The method of claim 135 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , and wherein the first encrypted 
key is the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., (PU-D (KD) ) ) . 



137. The method of claim 135 wherein the device has a 
public key (PU-D) and a private key (PR-D) , and wherein 
the key available to the device is (PR-D) . 

138. The method of claim 135 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C) , and wherein 
the second encrypted key is the content provider public 
key (PU-C) encrypted with the decryption key (KD) 

(i.e. , KD (PU-C) ) . 

139. The method of claim 135 wherein the second 
encrypted key is the basis for the first digital 
signature . 

140. The method of claim 134 wherein deriving the second 
key comprises: obtaining a signed certificate from the 
license, the signed certificate 

having contents therein; and 

applying the first key to the signature of the signed 
certificate to produce the contents of the certificate 
and also to validate the signature. 

141. The method of claim 140 wherein the digital license 
is provided by a license provider having a public key 
(PU-L) and a private key (PR-L) , and wherein the 
contents of the certificate is (PU-L) . 

142. The method of claim 141 wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C), and wherein 
the signed certificate is a certificate containing the 
license provider public key (PU-L) and signed by the 
content provider private key (PR-C) (i.e., (CERT (PU-L) 
S (PR-C) ) ) . 

143. The method of claim 141 wherein the digital content 
package is provided by a content provider authorized by 
a root source to provide the package, wherein the root 



source has a public key (PU-R) and a private key (PR-R) 
and wherein the signed certificate is a certificate 
containing the license provider public key (PU-L) and 
signed by the root source 

private key (PR-R) (i.e., (CERT (PU-L) S (PR-R))). 

144. The method of claim 134 wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C), and wherein 
the first key is (PU-C) . 

145. The method of claim 144 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , and wherein the first digital 
signature is based on the content provider public key 
(PU-C) encrypted with the decryption key (KD) and is 
signed by the content provider private key (PR-C) 
(i.e. , (KD (PU-C) S (PR-C) ) ) . 

146. The method of claim 145 wherein deriving (PU-C) 
comprises: deriving (KD) from a source available to the 
device; applying (KD) to (KD (PU-C) S (PR-C)) to 
produce (PU-C) . 

147. The method of claim 146 wherein the device has a 
public key (PU-D) and a private key (PR-D) , wherein the 
license has the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., ( PU-D (KD) ) ) , and 
wherein deriving (KD) comprises: 

obtaining (PU-D (KD) ) from the licensed- 
applying (PR-D) to (PU-D (KD)) to produce (KD) . 

148. The method of claim 147 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the license rights description 
being encrypted with the decryption key (KD) (i.e., (KD 
(DR-L) ) ) , the method further comprising applying (KD) 
to (KD(DRL)) to obtain the license terms and 
conditions . 



149. The method of claim 147 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the method further comprising: 
evaluating the license terms and conditions to 
determine whether the digital content is permitted to 
be rendered in the manner sought; 

if so, applying (KD) to the encrypted digital content 
to decrypt such encrypted digital content; and 
rendering the decrypted digital content. 

150. The method of claim 144 wherein the encrypted 
digital content package is provided by a content 
provider authorized by a root source to provide the 
package, wherein the root source has a public key (PU- 
R) and a private key (PR-R) and wherein the first 
digital signature is a signed certificate containing 
the content provider public key (PU-C) and signed by 
the root source private key (PR-R) (i.e., (CERT (PU-C) 
S (PR-R) ) ) . 

151. The method of claim 134 wherein the digital license 
is provided by a license provider having a public key 
(PU-L) and a private key (PR-L) , and wherein the second 
key is (PU-L) . 

152. The method of claim 151 wherein the second digital 
signature is a digital signature encrypted with the 
license provider private key (i.e., (S (PR-L))). 

153. The method of claim 152 wherein the digital content 
package is provided by a content provider having a 
public key (PU-C) and a private key (PR-C), wherein the 
license has a certificate containing the license 
provider public key (PU-L) and signed by the content 
provider private key (PR-C) (i.e., (CERT (PU-L) S (PR- 
C) ) ) , and wherein deriving (PU-L) comprises: 
deriving (PU-C) from a source available to the device; 
obtaining (CERT (PU-L) S (PR-C)) from the license; and 



applying (PU-C) to (CERT' (PU-L) S (PR-C) ) to validate 
(CERT (PU-L) S (PR-C)), to produce (PU-L) and also to 
validate the content provider. 

154 . The method of claim 153 wherein the encrypted 
digital content is decryptable according to a 
decryption key (KD) , wherein the first digital 
signature is based on the content provider public key 
(PU-C) encrypted with the decryption key (KD) and is 
signed by the content provider private key (PR-C) 
(i.e., (KD (PU-C) S (PR-C))), and wherein deriving 
(PU-C) comprises: 

deriving (KD) from a source available to the device; 
applying (KD) to (KD (PU-C) S (PR-C)) to produce (PU-C) 

155. The method of claim 154 wherein the device has a 
public key (PU-D) and a private key (PR-D) , wherein the 
license has the decryption key (KD) encrypted with the 
device public key (PU-D) (i.e., (PU-D (KD) ) ) , and 
wherein deriving (KD) comprises: 

obtaining (PU-D (KD) ) from the license; 
applying (PR-D) to (PU-D (KD) ) to produce (KD) . 

156. The method of claim 155 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the license rights description 
being encrypted with the decryption key (KD) (i.e., (KD 
(DRL) ) ) , the method further comprising applying (KD) to 
(KD(DRL)) to obtain the license terms and conditions. 

157. The method of claim 155 wherein the license has a 
license rights description specifying terms and 
conditions that must be satisfied before the digital 
content may be rendered, the method further comprising: 
evaluating the license terms and conditions to 
determine whether the digital content is permitted to 
be rendered- in the manner sought; if so, applying (KD) 
to the encrypted digital content to decrypt such 
encrypted digital content; and 
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ABSTRACT : 

A system for controlling use and distribution of digital works. In the present 
invention, the owner of a digital work attaches usage rights to that work. Usage 
rights are granted by the "owner" of a digital work to "buyers" of the digital work. 
The usage rights define how a digital work may be used and further distributed by 
the buyer. Each right has associated with it certain optional specifications which 
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outline the cond s and fees upon which the ri^^Pmay be exercised. Digital works 

are stored in a repository. A repository will process each request to access a 
digital work by examining the corresponding usage rights. Digital work playback 
devices, coupled to the repository containing the work, are used to play, display or 
print the work. Access to digital works for the purposes of transporting between 
repositories (e.g. copying, borrowing or transfer) is carried out using a digital 
work transport protocol. Access to digital works for the purposes of replay by a 
digital work playback device (e.g. printing, displaying or executing) is carried out 
using a digital work playback protocol. 

31 Claims, 20 Drawing figures 
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The protection method involves receiving requests for documents from several users 
(117) having computers with displays (121) and printers (123). The computers are 
connected to a network (9) , and the requests include unique user identification for 
each of the users. The requests are authenticated with a copyright server (7), which 
is used to direct a document server (3) to act upon proper request authentication. 

In response to this direction the document server creates encrypted documents along 
with a unique identification for each authenticated request and forwards the 
documents to the user through the network to corresp. agents of the authenticated 
request user. Each of the agents is selected from display agents and printer agents. 
The documents are encoded so that each document is uniquely encoded based on the 
unique identification, and are decrypted at the agent and so available for use when 
the secret keys are provided by the user. 

ADVANTAGE - Fully protects electronically published documents, and discourages 
distribution of illegal copies in violation of copyright laws, so that copies can be 
traced back to original owner. 
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EQUIVALENT -ABSTRACTS : 

A method of protecting electronically published documents, which comprises the step 
of: 

operating a computer system, including a copyright server and a document server 
connected thereto, and a network for electronic publication of documents stored in 
the document server, and including therein the steps of: 

a. ) receiving requests for documents from a plurality of users having computers with 
display devices or printers, said computers being connected by said network to said 
computer system, said requests including unique user identification for each of said 
plurality of users; 

b. ) authenticating said requests from said plurality of users with the copyright 
server; 

c. ) using said copyright server to direct the document server to act upon proper 
authentication of each request; 

d. ) in response to direction from said copyright server, using the document server 
to create encrypted documents from an encoded document along with a unique 
identification for each authenticated request and forwarding said documents to each 
authenticated request user through said network to corresponding agents located at 
each authenticated request user, each of said agents being selected from display 
agents and printer agents; 

e. ) encoding a requested document as an encoded document using the document server 
so that each encoded document created is uniquely encoded based upon said unique 
identification; and, 

f. ) decrypting said documents at each of said agents and making said documents 
available for use only in response to receiving correct secret keys provided by said 
authenticated request user to said agents. 
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